mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-06-08 22:18:26 +00:00
Merge branch 'master' of github.com:CVEProject/cvelist
This commit is contained in:
CVE Team
commit
3eb4f19020
@ -11,18 +11,96 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Primary Setup Tool (PST), SIMATIC IT Production Suite, SIMATIC NET PC-Software, SIMATIC PCS 7 V7.1, SIMATIC PCS 7 V8.0, SIMATIC PCS 7 V8.1, SIMATIC PCS 7 V8.2, SIMATIC STEP 7 (TIA Portal) V13, SIMATIC STEP 7 V5.X, SIMATIC WinCC (TIA Portal) Basic, Comfort, Advanced, SIMATIC WinCC (TIA Portal) Professional V13, SIMATIC WinCC (TIA Portal) Professional V14, SIMATIC WinCC Runtime Professional V13, SIMATIC WinCC Runtime Professional V14, SIMATIC WinCC V7.0 SP2 and earlier versions, SIMATIC WinCC V7.0 SP3, SIMATIC WinCC V7.2, SIMATIC WinCC V7.3, SIMATIC WinCC V7.4, SIMIT V9.0, SINEMA Remote Connect Client, SINEMA Server, SOFTNET Security Client V5.0, Security Configuration Tool (SCT), TeleControl Server Basic, WinAC RTX 2010 SP2, WinAC RTX F 2010 SP2",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "Primary Setup Tool (PST) : All versions < V4.2 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC IT Production Suite : All versions < V7.0 SP1 HFX 2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC NET PC-Software : All versions < V14"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PCS 7 V7.1 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PCS 7 V8.0 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PCS 7 V8.1 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PCS 7 V8.2 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC STEP 7 (TIA Portal) V13 : All versions < V13 SP2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC STEP 7 V5.X : All versions < V5.5 SP4 HF11"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC (TIA Portal) Basic, Comfort, Advanced : All versions < V14"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC (TIA Portal) Professional V13 : All versions < V13 SP2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC (TIA Portal) Professional V14 : All versions < V14 SP1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC Runtime Professional V13 : All versions < V13 SP2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC Runtime Professional V14 : All versions < V14 SP1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.0 SP2 and earlier versions : All versions < V7.0 SP2 Upd 12"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.0 SP3 : All versions < V7.0 SP3 Upd 8"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.2 : All versions < V7.2 Upd 14"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.3 : All versions < V7.3 Upd 11"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.4 : All versions < V7.4 SP1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMIT V9.0 : All versions < V9.0 SP1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINEMA Remote Connect Client : All versions < V1.0 SP3"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINEMA Server : All versions < V13 SP2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SOFTNET Security Client V5.0 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "Security Configuration Tool (SCT) : All versions < V4.3 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "TeleControl Server Basic : All versions < V3.0 SP2"
|
||||
},
|
||||
{
|
||||
"version_value" : "WinAC RTX 2010 SP2 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "WinAC RTX F 2010 SP2 : All versions"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Siemens AG"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -34,7 +112,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Unquoted Windows search path vulnerability in Siemens SIMATIC WinCC V7.0 SP2 before Upd 12, V7.0 SP3 before Upd 8, V7.2 before Upd 14, V7.3 before Upd 11, and V7.4 before SP1; SIMATIC STEP 7 V5.x before V5.5 SP4 HF11; SIMATIC PCS 7 through V8.2; SIMATIC WinCC Runtime Professional V13 before SP2 and V14 before SP1; SIMATIC WinCC (TIA Portal) Professional V13 before SP2 and V14 before SP1; SIMATIC WinCC (TIA Portal) Basic, Comfort, Advanced before 14; SIMATIC STEP 7 (TIA Portal) V13 before SP2; SIMATIC NET PC-Software before V14; SINEMA Remote Connect Client; SINEMA Server before V13 SP2; SIMATIC WinAC RTX 2010 SP2; SIMATIC WinAC RTX F 2010 SP2; SIMATIC IT Production Suite before V7.0 SP1 HFX 2; TeleControl Server Basic before 3.0 SP2; SOFTNET Security Client 5.0; SIMIT before V9.0 SP1; Security Configuration Tool (SCT) before V4.3 HF1; and Primary Setup Tool (PST) before V4.2 HF1, when the installation does not use the %PROGRAMFILES% directory, might allow local users to gain privileges via a Trojan horse executable file."
|
||||
"value" : "A vulnerability has been identified in Primary Setup Tool (PST), SIMATIC IT Production Suite, SIMATIC NET PC-Software, SIMATIC PCS 7 V7.1, SIMATIC PCS 7 V8.0, SIMATIC PCS 7 V8.1, SIMATIC PCS 7 V8.2, SIMATIC STEP 7 (TIA Portal) V13, SIMATIC STEP 7 V5.X, SIMATIC WinCC (TIA Portal) Basic, Comfort, Advanced, SIMATIC WinCC (TIA Portal) Professional V13, SIMATIC WinCC (TIA Portal) Professional V14, SIMATIC WinCC Runtime Professional V13, SIMATIC WinCC Runtime Professional V14, SIMATIC WinCC V7.0 SP2 and earlier versions, SIMATIC WinCC V7.0 SP3, SIMATIC WinCC V7.2, SIMATIC WinCC V7.3, SIMATIC WinCC V7.4, SIMIT V9.0, SINEMA Remote Connect Client, SINEMA Server, SOFTNET Security Client V5.0, Security Configuration Tool (SCT), TeleControl Server Basic, WinAC RTX 2010 SP2, WinAC RTX F 2010 SP2. Unquoted service paths could allow local Microsoft Windows operating system users to escalate their privileges if the affected products are not installed under their default path (\"C:\\Program Files\\*\" or the localized equivalent)."
|
||||
}
|
||||
]
|
||||
},
|
||||
@ -44,7 +122,7 @@
|
||||
"description" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "n/a"
|
||||
"value" : "CWE-284: Improper Access Control"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -59,7 +137,7 @@
|
||||
"url" : "http://securityaffairs.co/wordpress/53266/security/cve-2016-7165-siemens.html"
|
||||
},
|
||||
{
|
||||
"url" : "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-701708.pdf"
|
||||
"url" : "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-701708.pdf"
|
||||
},
|
||||
{
|
||||
"url" : "http://www.securityfocus.com/bid/94158"
|
||||
|
||||
@ -11,18 +11,132 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Siemens industrial products",
|
||||
"product_name" : "SIMATIC S7-200 Smart, SIMATIC S7-400 PN V6, SIMATIC S7-400 H V6, SIMATIC S7-400 PN/DP V7, SIMATIC S7-410 V8, SIMATIC S7-300, SIMATIC S7-1200, SIMATIC S7-1500, SIMATIC S7-1500 Software Controller, SIMATIC WinAC RTX 2010 incl. F, SIMATIC ET200AL, SIMATIC ET200ecoPN, SIMATIC ET200M, SIMATIC ET200MP, SIMATIC ET200pro, SIMATIC ET200S, SIMATIC ET200SP, Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 PN IO, SIMOTION D, SIMOTION C, SIMOTION P, SINAMICS DCM, SINAMICS DCP, SINAMICS G110M w. PN, SINAMICS G120 (C/P/D) w. PN, SINAMICS G130 w. PN, SINAMICS G150 w. PN, SINAMICS S110 w. PN, SINAMICS S120 w. PN, SINAMICS S150 V4.7 w. PN, SINAMICS S150 V4.8 w. PN, SINAMICS V90 w. PN, SINUMERIK 840D sl, SIMATIC Compact Field Unit, SIMATIC PN/PN Coupler, SIMOCODE pro V PROFINET, SIRIUS Soft Starter 3RW44 PN",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "Siemens industrial products"
|
||||
"version_value" : "SIMATIC S7-200 Smart : All versions < V2.03.01"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400 PN V6 : All versions < V6.0.6"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400 H V6 : All versions < V6.0.8"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400 PN/DP V7 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-410 V8 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-300 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1200 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1500 : All versions < V2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1500 Software Controller : All versions < V2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinAC RTX 2010 incl. F : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET200AL : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET200ecoPN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET200M : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET200MP : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET200pro : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET200S : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET200SP : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P : All versions < V4.5"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 PN IO : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOTION D : All versions < V5.1 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOTION C : All versions < V5.1 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOTION P : All versions < V5.1 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS DCM : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS DCP : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G110M w. PN : All versions < V4.7 SP9 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G120 (C/P/D) w. PN : All versions < V4.7 SP9 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G130 w. PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G150 w. PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S110 w. PN : All versions < V4.4 SP3 HF6"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S120 w. PN : All versions < V4.8 HF5"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S150 V4.7 w. PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S150 V4.8 w. PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS V90 w. PN : All versions < V1.02"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 840D sl : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC Compact Field Unit : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PN/PN Coupler : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOCODE pro V PROFINET : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIRIUS Soft Starter 3RW44 PN : All versions"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Siemens AG"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -34,7 +148,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "A vulnerability has been identified in the following Siemens industrial products: SIMATIC S7-200 Smart: All versions < V2.03.01, SIMATIC S7-400 PN V6: All versions < V6.0.6, SIMATIC S7-400 H V6: All versions < 6.0.8, SIMATIC S7-400 PN/DP V7: All versions, SIMATIC S7-410 V8: All versions, SIMATIC S7-300: All versions, SIMATIC S7-1200: All versions, SIMATIC S7-1500: All versions < 2.0, SIMATIC S7-1500 Software Controller: All versions < 2.0, SIMATIC WinAC RTX 2010 incl. F: All versions, SIMATIC ET 200AL: All versions, SIMATIC ET 200ecoPN: All versions, SIMATIC ET 200M: All versions, SIMATIC ET 200MP: All versions, SIMATIC ET 200pro: All versions, SIMATIC ET 200S: All versions, SIMATIC ET 200SP: All versions, DK Standard Ethernet Controller: All versions, EK-ERTEC 200P: All versions < V4.5, EK-ERTEC 200 PN IO: All versions, SIMOTION D: All versions < V5.1 HF1, SIMOTION C: All versions < V5.1 HF1, SIMOTION P: All versions < V5.1 HF1, SINAMICS DCM: All versions, SINAMICS DCP: All versions, SINAMICS G110M / G120(C/P/D) w. PN: All versions < V4.7 SP9 HF1, SINAMICS G130 and G150: All versions, SINAMICS S110 w. PN: All versions, SINAMICS S120: All versions, SINAMICS S150 V4.7 and V4.8: All versions, SINAMICS V90 w. PN: All versions, SINUMERIK 840D sl: All versions, SIMATIC Compact Field Unit: All versions, SIMATIC PN/PN Coupler: All versions, SIMOCODE pro V PROFINET: All versions, SIRIUS Soft starter 3RW44 PN: All versions. Specially crafted packets sent to port 161/UDP could cause a Denial-of-Service condition. The affected devices must be restarted manually."
|
||||
"value" : "A vulnerability has been identified in SIMATIC S7-200 Smart, SIMATIC S7-400 PN V6, SIMATIC S7-400 H V6, SIMATIC S7-400 PN/DP V7, SIMATIC S7-410 V8, SIMATIC S7-300, SIMATIC S7-1200, SIMATIC S7-1500, SIMATIC S7-1500 Software Controller, SIMATIC WinAC RTX 2010 incl. F, SIMATIC ET200AL, SIMATIC ET200ecoPN, SIMATIC ET200M, SIMATIC ET200MP, SIMATIC ET200pro, SIMATIC ET200S, SIMATIC ET200SP, Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 PN IO, SIMOTION D, SIMOTION C, SIMOTION P, SINAMICS DCM, SINAMICS DCP, SINAMICS G110M w. PN, SINAMICS G120 (C/P/D) w. PN, SINAMICS G130 w. PN, SINAMICS G150 w. PN, SINAMICS S110 w. PN, SINAMICS S120 w. PN, SINAMICS S150 V4.7 w. PN, SINAMICS S150 V4.8 w. PN, SINAMICS V90 w. PN, SINUMERIK 840D sl, SIMATIC Compact Field Unit, SIMATIC PN/PN Coupler, SIMOCODE pro V PROFINET, SIRIUS Soft Starter 3RW44 PN. Specially crafted packets sent to port 161/udp could cause a Denial-of-Service condition.The affected devices must be restarted manually."
|
||||
}
|
||||
]
|
||||
},
|
||||
@ -44,7 +158,7 @@
|
||||
"description" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Denial-of-Service"
|
||||
"value" : "CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,11 +12,272 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "SIEMENS SIMATIC CP 343-1 Std, CP 343-1 Lean, SIMATIC CP 343-1 Adv, SIMATIC CP 443-1 Std, CP 443-1 Adv, SIMATIC CP 443-1 OPC-UA, SIMATIC CP 1243-1 (All versions), SIMATIC CM 1542-1, SIMATIC CP 1542SP-1, CP 1542SP-1 IRC, and CP 1543SP-1, SIMATIC CP 1543-1, SIMATIC RF650R, RF680R, RF685R, SIMATIC CP 1616, CP 1604, DK-16xx PN IO, SCALANCE X200, SCALANCE X200 IRT, SCALANCE X-300/X408, SCALANCE X414, SCALANCE XM400, XR500, SCALANCE W700, SCALANCE M-800, S615, Softnet PROFINET IO for PC-based Windows systems, IE/PB-Link, IE/AS-i Link PN IO, SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced, SITOP PSU8600 PROFINET, SITOP UPS1600 PROFINET, SIMATIC ET 200AL, SIMATIC ET 200ecoPN, SIMATIC ET 200M, SIMATIC ET 200MP, SIMATIC ET 200pro, SIMATIC ET 200S, SIMATIC ET 200SP, PN/PN Coupler, DK Standard Ethernet Controller, EK-ERTEC 200P PN IO, EK-ERTEC 200 PN IO, SIMATIC S7-200 SMART, SIMATIC S7-300 incl. F and T, SIMATIC S7-400 incl. F and H, SIMATIC S7-1200 incl. F, SIMATIC S7-1500 incl. F, T, and TF, SIMATIC S7-1500 Software Controller incl. F, SIMATIC WinAC RTX 2010 incl. F, SIRIUS ACT 3SU1 interface module PROFINET, SIRIUS Soft starter 3RW44 PN, SIRIUS Motor starter M200D PROFINET, SIMOCODE pro V PROFINET, SINAMICS DCM, SINAMICS DCP, SINAMICS G110M / G120(C/P/D) w. PN, SINAMICS G130 and G150, SINAMICS S110 w. PN, SINAMICS S120, SINAMICS S150, SINAMICS V90 w. PN, SIMOTION, SINUMERIK 828D, SINUMERIK 840D sl, SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels",
|
||||
"product_name" : "Extension Unit 12\" PROFINET, Extension Unit 15\" PROFINET, Extension Unit 19\" PROFINET, Extension Unit 22\" PROFINET, SIMATIC CP 1242-7 GPRS V2, SIMATIC CP 1243-7 LTE/US, SIMATIC CP 1243-8, SIMATIC CP 1626, Development/Evaluation Kit DK Standard Ethernet Controller, Development/Evaluation Kit EK-ERTEC 200 PN IO, Development/Evaluation Kit EK-ERTEC 200P PN IO, IE/AS-i Link PN IO, IE/PB-Link, SCALANCE M-800, S615, SCALANCE W700, SCALANCE X-200, SCALANCE X-200 IRT, SCALANCE X-300/X408, SCALANCE X414, SCALANCE XM400, SCALANCE XR500, SIMATIC WinAC RTX 2010 incl. F, SIMATIC CP 1243-1, SIMATIC CP 1243-1 DNP3, SIMATIC CP 1243-1 IEC, SIMATIC CP 1243-1 IRC, SIMATIC CP 1542-1, SIMATIC CP 1542SP-1, SIMATIC CP 1542SP-1 IRC, SIMATIC CP 1543-1, SIMATIC CP 1543SP-1, SIMATIC CP 1604, SIMATIC CP 1616, SIMATIC CP 343-1 Adv, SIMATIC CP 343-1 Lean, SIMATIC CP 343-1 Std, SIMATIC CP 443-1 Adv, SIMATIC CP 443-1 OPC-UA, SIMATIC CP 443-1 Std, SIMATIC DK-16xx PN IO, SIMATIC ET 200AL, SIMATIC ET 200M, SIMATIC ET 200MP, SIMATIC ET 200S, SIMATIC ET 200SP, SIMATIC ET 200ecoPN, SIMATIC ET 200pro, SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels, SIMATIC PN/PN Coupler, SIMATIC RF650R, SIMATIC RF680R, SIMATIC RF685R, SIMATIC S7-1200 incl. F, SIMATIC S7-1500 Software Controller incl. F, SIMATIC S7-1500 incl. F, T, and TF, SIMATIC S7-200 SMART, SIMATIC S7-300 incl. F and T, SIMATIC S7-400 PN/DP V6 Incl. F, SIMATIC S7-400 PN/DP V7 Incl. F, SIMATIC S7-400-H V6, SIMATIC S7-410, SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced, SIMOCODE pro V PROFINET, SIMOTION, SINAMICS DCM w. PN, SINAMICS DCP w. PN, SINAMICS G110M w. PN, SINAMICS G120(C/P/D) w. PN, SINAMICS G130 V4.7 w. PN, SINAMICS G130 V4.8 w. PN, SINAMICS G150 V4.7 w. PN, SINAMICS G150 V4.8 w. PN, SINAMICS S110 w. PN, SINAMICS S120 V4.7 w. PN, SINAMICS S120 V4.8 w. PN, SINAMICS S150 V4.7 w. PN, SINAMICS S150 V4.8 w. PN, SINAMICS V90 w. PN, SINUMERIK 828D V4.5 and prior, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.5 and prior, SINUMERIK 840D sl V4.7, SIRIUS ACT 3SU1 interface module PROFINET, SIRIUS Motor Starter M200D PROFINET, SIRIUS Soft Starter 3RW44 PN, SITOP PSU8600 PROFINET, SITOP UPS1600 PROFINET, Softnet PROFINET IO for PC-based Windows systems",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "SIEMENS SIMATIC CP 343-1 Std, CP 343-1 Lean (All versions), SIMATIC CP 343-1 Adv (All versions), SIMATIC CP 443-1 Std, CP 443-1 Adv (All versions before V3.2.17), SIMATIC CP 443-1 OPC-UA (All versions), SIMATIC CP 1243-1 (All versions), SIMATIC CM 1542-1 (All versions before V2.0), SIMATIC CP 1542SP-1, CP 1542SP-1 IRC, and CP 1543SP-1 (All versions before to V1.0.15), SIMATIC CP 1543-1 (All versions before V2.1), SIMATIC RF650R, RF680R, RF685R (All versions before V3.0), SIMATIC CP 1616, CP 1604, DK-16xx PN IO (All versions before V2.7), SCALANCE X200 (All versions), SCALANCE X200 IRT (All versions), SCALANCE X-300/X408 (All versions before V4.1.0), SCALANCE X414 (All versions before V3.10.2), SCALANCE XM400, XR500 (All versions before V6.1), SCALANCE W700 (All versions before V6.1), SCALANCE M-800, S615 (All versions), Softnet PROFINET IO for PC-based Windows systems (All versions), IE/PB-Link (All versions before V3.0), IE/AS-i Link PN IO (All versions), SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced (All versions), SITOP PSU8600 PROFINET (All versions before V1.2.0), SITOP UPS1600 PROFINET (All versions before V2.2.0), SIMATIC ET 200AL (All versions), SIMATIC ET 200ecoPN (All versions), SIMATIC ET 200M (All versions), SIMATIC ET 200MP (All versions before V4.0.1), SIMATIC ET 200pro (All versions), SIMATIC ET 200S (All versions), SIMATIC ET 200SP (All versions before V4.1.0), PN/PN Coupler (All versions), DK Standard Ethernet Controller (All versions before V4.1.1 Patch04), EK-ERTEC 200P PN IO (All versions before V4.4.0 Patch01), EK-ERTEC 200 PN IO (All versions before V4.2.1 Patch03), SIMATIC S7-200 SMART (All versions before V2.3), SIMATIC S7-300 incl. F and T (All versions before V3.X.14), SIMATIC S7-400 incl. F (All versions before V8.2), SIMATIC S7-400-H V6 (All versions before V6.0.7), SIMATIC S7-1200 incl. F (All versions before V4.2.1), SIMATIC S7-1500 incl. F, T, and TF (All versions before V2.1), SIMATIC S7-1500 Software Controller incl. F (All versions before V2.1), SIMATIC WinAC RTX 2010 incl. F (All versions), SIRIUS ACT 3SU1 interface module PROFINET (All versions), SIRIUS Soft starter 3RW44 PN (All versions), SIRIUS Motor starter M200D PROFINET (All versions), SIMOCODE pro V PROFINET (All versions), SINAMICS DCM (All versions), SINAMICS DCP (All versions), SINAMICS G110M / G120(C/P/D) w. PN (All versions before V4.7 SP6 HF3), SINAMICS G130 and G150 (All versions before V4.7 HF27 and V4.8 before HF4), SINAMICS S110 w. PN (All versions before V4.4 SP1 HF5), SINAMICS S120 (All versions before V4.7 HF27 and V4.8 before HF4), SINAMICS S150 (All versions before V4.7 HF27 and V4.8 before HF4), SINAMICS V90 w. PN (All versions before V1.1), SIMOTION (All versions before V4.5 HF1), SINUMERIK 828D (All versions before V4.5 SP6 HF2 and V4.7 before SP6 HF8), SINUMERIK 840D sl (All versions before V4.5 SP6 HF8 and V4.7 before SP4 HF1), SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels (All versions)."
|
||||
"version_value" : "Extension Unit 12\" PROFINET : All versions < V01.01.01"
|
||||
},
|
||||
{
|
||||
"version_value" : "Extension Unit 15\" PROFINET : All versions < V01.01.01"
|
||||
},
|
||||
{
|
||||
"version_value" : "Extension Unit 19\" PROFINET : All versions < V01.01.01"
|
||||
},
|
||||
{
|
||||
"version_value" : "Extension Unit 22\" PROFINET : All versions < V01.01.01"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1242-7 GPRS V2 : All versions < V2.1.82"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-7 LTE/US : All versions < V2.1.82"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-8 : All versions < V2.1.82"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1626 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kit DK Standard Ethernet Controller : All versions < V4.1.1 Patch04"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kit EK-ERTEC 200 PN IO : All versions < V4.2.1 Patch03"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kit EK-ERTEC 200P PN IO : All versions < V4.4. Patch01"
|
||||
},
|
||||
{
|
||||
"version_value" : "IE/AS-i Link PN IO : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "IE/PB-Link : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE M-800, S615 : All versions < V4.03"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE W700 : All versions < V6.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X-200 : All versions < V5.2.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X-200 IRT : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X-300/X408 : All versions < V4.1.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X414 : All versions < V3.10.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE XM400 : All versions < V6.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE XR500 : All versions < V6.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinAC RTX 2010 incl. F : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 : All versions < V2.1.82"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 DNP3 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 IEC : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 IRC : All versions < V2.1.82"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1542-1 : All versions < V2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1542SP-1 : All versions < V1.0.15"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1542SP-1 IRC : All versions < V1.0.15"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1543-1 : All versions < V2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1543SP-1 : All versions < V1.0.15"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1604 : All versions < V2.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1616 : All versions < V2.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 343-1 Adv : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 343-1 Lean : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 343-1 Std : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 443-1 Adv : All versions < V3.2.17"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 443-1 OPC-UA : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 443-1 Std : All versions < V3.2.17"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC DK-16xx PN IO : All versions < V2.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200AL : All versions < V1.0.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200M : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200MP : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200S : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200SP : All versions < V4.1.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200ecoPN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200pro : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PN/PN Coupler : All versions < V4.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC RF650R : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC RF680R : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC RF685R : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1200 incl. F : All versions < V4.2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1500 Software Controller incl. F : All versions < V2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1500 incl. F, T, and TF : All versions < V2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-200 SMART : All versions < V2.3"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-300 incl. F and T : All versions < V3.X.14"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400 PN/DP V6 Incl. F : All versions < V6.0.6"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400 PN/DP V7 Incl. F : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400-H V6 : All versions < V6.0.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-410 : All versions < V8.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOCODE pro V PROFINET : All versions < V2.0.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOTION : All versions < V4.5 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS DCM w. PN : All versions < V1.4 SP1 HF5"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS DCP w. PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G110M w. PN : All versions < V4.7 SP6 HF3"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G120(C/P/D) w. PN : All versions < V4.7 SP6 HF3"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G130 V4.7 w. PN : All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G130 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G150 V4.7 w. PN : V4.7: All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G150 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S110 w. PN : All versions < V4.4 SP3 HF5"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S120 V4.7 w. PN : All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S120 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S150 V4.7 w. PN : All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S150 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS V90 w. PN : All versions < V1.01"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 828D V4.5 and prior : All versions < V4.5 SP6 HF2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 828D V4.7 : All versions < V4.7 SP4 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 840D sl V4.5 and prior : All versions < V4.5 SP6 HF2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 840D sl V4.7 : All versions < V4.7 SP4 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIRIUS ACT 3SU1 interface module PROFINET : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIRIUS Motor Starter M200D PROFINET : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIRIUS Soft Starter 3RW44 PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SITOP PSU8600 PROFINET : All versions < V1.2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SITOP UPS1600 PROFINET : All versions < V2.2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "Softnet PROFINET IO for PC-based Windows systems : All versions < V14 SP1"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -35,7 +296,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Siemens SIMATIC CP 343-1 Std, CP 343-1 Lean (All versions), SIMATIC CP 343-1 Adv (All versions), SIMATIC CP 443-1 Std, CP 443-1 Adv (All versions before V3.2.17), SIMATIC CP 443-1 OPC-UA (All versions), SIMATIC CP 1243-1 (All versions before V2.1.82), SIMATIC CP 1243-1 IRC (All versions before V2.1.82), SIMATIC CP 1243-1 IEC (All versions), SIMATIC CP 1243-1 DNP3 (All versions), SIMATIC CM 1542-1 (All versions before V2.0), SIMATIC CP 1542SP-1, CP 1542SP-1 IRC, and CP 1543SP-1 (All versions before to V1.0.15), SIMATIC CP 1543-1 (All versions before V2.1), SIMATIC RF650R, RF680R, RF685R (All versions before V3.0), SIMATIC CP 1616, CP 1604, DK-16xx PN IO (All versions before V2.7), SCALANCE X-200 (All versions before V5.2.2), SCALANCE X200 IRT (All versions), SCALANCE X-300/X408 (All versions before V4.1.0), SCALANCE X414 (All versions before V3.10.2), SCALANCE XM400, XR500 (All versions before V6.1), SCALANCE W700 (All versions before V6.1), SCALANCE M-800, S615 (All versions before V4.03), Softnet PROFINET IO for PC-based Windows systems (All versions before V14 SP1), IE/PB-Link (All versions before V3.0), IE/AS-i Link PN IO (All versions), SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced (All versions), SITOP PSU8600 PROFINET (All versions before V1.2.0), SITOP UPS1600 PROFINET (All versions before V2.2.0), SIMATIC ET 200AL (All versions before V1.0.2), SIMATIC ET 200ecoPN (All versions), SIMATIC ET 200M (All versions), SIMATIC ET 200MP (All versions before V4.0.1), SIMATIC ET 200pro (All versions), SIMATIC ET 200S (All versions), SIMATIC ET 200SP (All versions before V4.1.0), PN/PN Coupler (All versions before V4.0), DK Standard Ethernet Controller (All versions before V4.1.1 Patch04), EK-ERTEC 200P PN IO (All versions before V4.4.0 Patch01), EK-ERTEC 200 PN IO (All versions before V4.2.1 Patch03), SIMATIC S7-200 SMART (All versions before V2.3), SIMATIC S7-300 incl. F and T (All versions before V3.X.14), S7-400 PN/DP V6 Incl. F (All versions before V6.0.6), S7-400-H V6 (All versions before V6.0.7), S7-400 PN/DP V7 Incl. F (All versions), S7-410 (All versions before V8.2), SIMATIC S7-1200 incl. F (All versions before V4.2.1), SIMATIC S7-1500 incl. F, T, and TF (All versions before V2.1), SIMATIC S7-1500 Software Controller incl. F (All versions before V2.1), SIMATIC WinAC RTX 2010 incl. F (All versions), SIRIUS ACT 3SU1 interface module PROFINET (All versions), SIRIUS Soft starter 3RW44 PN (All versions), SIRIUS Motor starter M200D PROFINET (All versions), SIMOCODE pro V PROFINET (All versions), SINAMICS DCM (All versions before V1.4 SP1 HF5), SINAMICS DCP (All versions), SINAMICS G110M / G120(C/P/D) w. PN (All versions before V4.7 SP6 HF3), SINAMICS G130 and G150 (V4.7 before HF27 and V4.8 before HF4), SINAMICS S110 w. PN (All versions before V4.4 SP3 HF5), SINAMICS S120 (V4.7 before HF27 and V4.8 before HF4), SINAMICS S150 (V4.7 before HF27 and V4.8 before HF4), SINAMICS V90 w. PN (All versions before V1.1), SIMOTION (All versions before V4.5 HF1), SINUMERIK 828D (All versions before V4.5 SP6 HF2 and V4.7 before SP6 HF8), SINUMERIK 840D sl (All versions before V4.5 SP6 HF8 and V4.7 before SP4 HF1), and SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels (All versions) could be affected by a Denial-of-Service condition induced by a specially crafted PROFINET DCP broadcast (Layer 2 - Ethernet) packet."
|
||||
"value" : "A vulnerability has been identified in Extension Unit 12\" PROFINET, Extension Unit 15\" PROFINET, Extension Unit 19\" PROFINET, Extension Unit 22\" PROFINET, SIMATIC CP 1242-7 GPRS V2, SIMATIC CP 1243-7 LTE/US, SIMATIC CP 1243-8, SIMATIC CP 1626, Development/Evaluation Kit DK Standard Ethernet Controller, Development/Evaluation Kit EK-ERTEC 200 PN IO, Development/Evaluation Kit EK-ERTEC 200P PN IO, IE/AS-i Link PN IO, IE/PB-Link, SCALANCE M-800, S615, SCALANCE W700, SCALANCE X-200, SCALANCE X-200 IRT, SCALANCE X-300/X408, SCALANCE X414, SCALANCE XM400, SCALANCE XR500, SIMATIC WinAC RTX 2010 incl. F, SIMATIC CP 1243-1, SIMATIC CP 1243-1 DNP3, SIMATIC CP 1243-1 IEC, SIMATIC CP 1243-1 IRC, SIMATIC CP 1542-1, SIMATIC CP 1542SP-1, SIMATIC CP 1542SP-1 IRC, SIMATIC CP 1543-1, SIMATIC CP 1543SP-1, SIMATIC CP 1604, SIMATIC CP 1616, SIMATIC CP 343-1 Adv, SIMATIC CP 343-1 Lean, SIMATIC CP 343-1 Std, SIMATIC CP 443-1 Adv, SIMATIC CP 443-1 OPC-UA, SIMATIC CP 443-1 Std, SIMATIC DK-16xx PN IO, SIMATIC ET 200AL, SIMATIC ET 200M, SIMATIC ET 200MP, SIMATIC ET 200S, SIMATIC ET 200SP, SIMATIC ET 200ecoPN, SIMATIC ET 200pro, SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels, SIMATIC PN/PN Coupler, SIMATIC RF650R, SIMATIC RF680R, SIMATIC RF685R, SIMATIC S7-1200 incl. F, SIMATIC S7-1500 Software Controller incl. F, SIMATIC S7-1500 incl. F, T, and TF, SIMATIC S7-200 SMART, SIMATIC S7-300 incl. F and T, SIMATIC S7-400 PN/DP V6 Incl. F, SIMATIC S7-400 PN/DP V7 Incl. F, SIMATIC S7-400-H V6, SIMATIC S7-410, SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced, SIMOCODE pro V PROFINET, SIMOTION, SINAMICS DCM w. PN, SINAMICS DCP w. PN, SINAMICS G110M w. PN, SINAMICS G120(C/P/D) w. PN, SINAMICS G130 V4.7 w. PN, SINAMICS G130 V4.8 w. PN, SINAMICS G150 V4.7 w. PN, SINAMICS G150 V4.8 w. PN, SINAMICS S110 w. PN, SINAMICS S120 V4.7 w. PN, SINAMICS S120 V4.8 w. PN, SINAMICS S150 V4.7 w. PN, SINAMICS S150 V4.8 w. PN, SINAMICS V90 w. PN, SINUMERIK 828D V4.5 and prior, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.5 and prior, SINUMERIK 840D sl V4.7, SIRIUS ACT 3SU1 interface module PROFINET, SIRIUS Motor Starter M200D PROFINET, SIRIUS Soft Starter 3RW44 PN, SITOP PSU8600 PROFINET, SITOP UPS1600 PROFINET, Softnet PROFINET IO for PC-based Windows systems. Specially crafted PROFINET DCP broadcast packets could cause a Denial-of-Service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected."
|
||||
}
|
||||
]
|
||||
},
|
||||
@ -53,6 +314,9 @@
|
||||
},
|
||||
"references" : {
|
||||
"reference_data" : [
|
||||
{
|
||||
"url" : "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-284673.pdf;"
|
||||
},
|
||||
{
|
||||
"url" : "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf"
|
||||
},
|
||||
|
||||
@ -11,18 +11,255 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Siemens Industrial Products",
|
||||
"product_name" : "Development/Evaluation Kit DK Standard Ethernet Controller, Development/Evaluation Kit EK-ERTEC 200 PN IO, Development/Evaluation Kit EK-ERTEC 200P PN IO, IE/AS-i Link PN IO, IE/PB-Link, SCALANCE M-800, S615, SCALANCE W700, SCALANCE X-200, SCALANCE X-200 IRT, SCALANCE X-300/X408, SCALANCE X414, SCALANCE XM400, SCALANCE XR500, SIMATIC WinAC RTX 2010 incl. F, SIMATIC CP 1243-1, SIMATIC CP 1243-1 DNP3, SIMATIC CP 1243-1 IEC, SIMATIC CP 1243-1 IRC, SIMATIC CP 1542-1, SIMATIC CP 1542SP-1, SIMATIC CP 1542SP-1 IRC, SIMATIC CP 1543-1, SIMATIC CP 1543SP-1, SIMATIC CP 1604, SIMATIC CP 1616, SIMATIC CP 343-1 Adv, SIMATIC CP 343-1 Lean, SIMATIC CP 343-1 Std, SIMATIC CP 443-1 Adv, SIMATIC CP 443-1 OPC-UA, SIMATIC CP 443-1 Std, SIMATIC DK-16xx PN IO, SIMATIC ET 200AL, SIMATIC ET 200M, SIMATIC ET 200MP, SIMATIC ET 200S, SIMATIC ET 200SP, SIMATIC ET 200ecoPN, SIMATIC ET 200pro, SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels, SIMATIC PN/PN Coupler, SIMATIC RF650R, SIMATIC RF680R, SIMATIC RF685R, SIMATIC S7-1200 incl. F, SIMATIC S7-1500 Software Controller incl. F, SIMATIC S7-1500 incl. F, T, and TF, SIMATIC S7-200 SMART, SIMATIC S7-300 incl. F and T, SIMATIC S7-400 PN/DP V6 Incl. F, SIMATIC S7-400 PN/DP V7 Incl. F, SIMATIC S7-400-H V6, SIMATIC S7-410, SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced, SIMOCODE pro V PROFINET, SIMOTION, SINAMICS DCM w. PN, SINAMICS DCP w. PN, SINAMICS G110M w. PN, SINAMICS G120(C/P/D) w. PN, SINAMICS G130 V4.7 w. PN, SINAMICS G130 V4.8 w. PN, SINAMICS G150 V4.7 w. PN, SINAMICS G150 V4.8 w. PN, SINAMICS S110 w. PN, SINAMICS S120 V4.7 w. PN, SINAMICS S120 V4.8 w. PN, SINAMICS S150 V4.7 w. PN, SINAMICS S150 V4.8 w. PN, SINAMICS V90 w. PN, SINUMERIK 828D V4.5 and prior, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.5 and prior, SINUMERIK 840D sl V4.7, SIRIUS ACT 3SU1 interface module PROFINET, SIRIUS Motor Starter M200D PROFINET, SIRIUS Soft Starter 3RW44 PN, SITOP PSU8600 PROFINET, SITOP UPS1600 PROFINET, Softnet PROFINET IO for PC-based Windows systems",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "Siemens Industrial Products"
|
||||
"version_value" : "Development/Evaluation Kit DK Standard Ethernet Controller : All versions < V4.1.1 Patch04"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kit EK-ERTEC 200 PN IO : All versions < V4.2.1 Patch03"
|
||||
},
|
||||
{
|
||||
"version_value" : "Development/Evaluation Kit EK-ERTEC 200P PN IO : All versions < V4.4. Patch01"
|
||||
},
|
||||
{
|
||||
"version_value" : "IE/AS-i Link PN IO : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "IE/PB-Link : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE M-800, S615 : All versions < V4.03"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE W700 : All versions < V6.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X-200 : All versions < V5.2.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X-200 IRT : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X-300/X408 : All versions < V4.1.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE X414 : All versions < V3.10.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE XM400 : All versions < V6.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SCALANCE XR500 : All versions < V6.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinAC RTX 2010 incl. F : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 : All versions < V2.1.82"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 DNP3 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 IEC : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1243-1 IRC : All versions < V2.1.82"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1542-1 : All versions < V2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1542SP-1 : All versions < V1.0.15"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1542SP-1 IRC : All versions < V1.0.15"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1543-1 : All versions < V2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1543SP-1 : All versions < V1.0.15"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1604 : All versions < V2.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 1616 : All versions < V2.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 343-1 Adv : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 343-1 Lean : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 343-1 Std : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 443-1 Adv : All versions < V3.2.17"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 443-1 OPC-UA : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC CP 443-1 Std : All versions < V3.2.17"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC DK-16xx PN IO : All versions < V2.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200AL : All versions < V1.0.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200M : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200MP : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200S : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200SP : All versions < V4.1.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200ecoPN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC ET 200pro : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PN/PN Coupler : All versions < V4.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC RF650R : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC RF680R : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC RF685R : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1200 incl. F : All versions < V4.2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1500 Software Controller incl. F : All versions < V2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-1500 incl. F, T, and TF : All versions < V2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-200 SMART : All versions < V2.3"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-300 incl. F and T : All versions < V3.X.14"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400 PN/DP V6 Incl. F : All versions < V6.0.6"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400 PN/DP V7 Incl. F : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-400-H V6 : All versions < V6.0.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC S7-410 : All versions < V8.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOCODE pro V PROFINET : All versions < V2.0.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMOTION : All versions < V4.5 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS DCM w. PN : All versions < V1.4 SP1 HF5"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS DCP w. PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G110M w. PN : All versions < V4.7 SP6 HF3"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G120(C/P/D) w. PN : All versions < V4.7 SP6 HF3"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G130 V4.7 w. PN : All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G130 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G150 V4.7 w. PN : V4.7: All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS G150 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S110 w. PN : All versions < V4.4 SP3 HF5"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S120 V4.7 w. PN : All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S120 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S150 V4.7 w. PN : All versions < V4.7 HF27"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS S150 V4.8 w. PN : All versions < V4.8 HF4"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAMICS V90 w. PN : All versions < V1.01"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 828D V4.5 and prior : All versions < V4.5 SP6 HF2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 828D V4.7 : All versions < V4.7 SP4 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 840D sl V4.5 and prior : All versions < V4.5 SP6 HF2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 840D sl V4.7 : All versions < V4.7 SP4 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIRIUS ACT 3SU1 interface module PROFINET : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIRIUS Motor Starter M200D PROFINET : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIRIUS Soft Starter 3RW44 PN : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SITOP PSU8600 PROFINET : All versions < V1.2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SITOP UPS1600 PROFINET : All versions < V2.2.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "Softnet PROFINET IO for PC-based Windows systems : All versions < V14 SP1"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Siemens AG"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -34,7 +271,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Siemens SIMATIC S7-300 incl. F and T (All versions before V3.X.14), S7-400 PN/DP V6 Incl. F (All versions before V6.0.6), S7-400-H V6 (All versions before V6.0.7), S7-400 PN/DP V7 Incl. F (All versions), S7-410 (All versions before V8.2), SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels (All versions) could be affected by a Denial-of-Service condition induced by a specially crafted PROFINET DCP (Layer 2 - Ethernet) packet sent to an affected product."
|
||||
"value" : "A vulnerability has been identified in Development/Evaluation Kit DK Standard Ethernet Controller, Development/Evaluation Kit EK-ERTEC 200 PN IO, Development/Evaluation Kit EK-ERTEC 200P PN IO, IE/AS-i Link PN IO, IE/PB-Link, SCALANCE M-800, S615, SCALANCE W700, SCALANCE X-200, SCALANCE X-200 IRT, SCALANCE X-300/X408, SCALANCE X414, SCALANCE XM400, SCALANCE XR500, SIMATIC WinAC RTX 2010 incl. F, SIMATIC CP 1243-1, SIMATIC CP 1243-1 DNP3, SIMATIC CP 1243-1 IEC, SIMATIC CP 1243-1 IRC, SIMATIC CP 1542-1, SIMATIC CP 1542SP-1, SIMATIC CP 1542SP-1 IRC, SIMATIC CP 1543-1, SIMATIC CP 1543SP-1, SIMATIC CP 1604, SIMATIC CP 1616, SIMATIC CP 343-1 Adv, SIMATIC CP 343-1 Lean, SIMATIC CP 343-1 Std, SIMATIC CP 443-1 Adv, SIMATIC CP 443-1 OPC-UA, SIMATIC CP 443-1 Std, SIMATIC DK-16xx PN IO, SIMATIC ET 200AL, SIMATIC ET 200M, SIMATIC ET 200MP, SIMATIC ET 200S, SIMATIC ET 200SP, SIMATIC ET 200ecoPN, SIMATIC ET 200pro, SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels, SIMATIC PN/PN Coupler, SIMATIC RF650R, SIMATIC RF680R, SIMATIC RF685R, SIMATIC S7-1200 incl. F, SIMATIC S7-1500 Software Controller incl. F, SIMATIC S7-1500 incl. F, T, and TF, SIMATIC S7-200 SMART, SIMATIC S7-300 incl. F and T, SIMATIC S7-400 PN/DP V6 Incl. F, SIMATIC S7-400 PN/DP V7 Incl. F, SIMATIC S7-400-H V6, SIMATIC S7-410, SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced, SIMOCODE pro V PROFINET, SIMOTION, SINAMICS DCM w. PN, SINAMICS DCP w. PN, SINAMICS G110M w. PN, SINAMICS G120(C/P/D) w. PN, SINAMICS G130 V4.7 w. PN, SINAMICS G130 V4.8 w. PN, SINAMICS G150 V4.7 w. PN, SINAMICS G150 V4.8 w. PN, SINAMICS S110 w. PN, SINAMICS S120 V4.7 w. PN, SINAMICS S120 V4.8 w. PN, SINAMICS S150 V4.7 w. PN, SINAMICS S150 V4.8 w. PN, SINAMICS V90 w. PN, SINUMERIK 828D V4.5 and prior, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.5 and prior, SINUMERIK 840D sl V4.7, SIRIUS ACT 3SU1 interface module PROFINET, SIRIUS Motor Starter M200D PROFINET, SIRIUS Soft Starter 3RW44 PN, SITOP PSU8600 PROFINET, SITOP UPS1600 PROFINET, Softnet PROFINET IO for PC-based Windows systems. Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a Denial-of-Service condition of that product. Humaninteraction is required to recover the system. PROFIBUS interfaces are not affected. This vulnerability affects only SIMATIC HMI Multi Panels and HMI Mobile Panels, and S7-300/S7-400 devices."
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -12,11 +12,71 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "SIEMENS SIMATIC WinCC (TIA Portal) V13 and V14, SIMATIC STEP 7 (TIA Portal) V13 and V14, SIMATIC STEP 7 V5.X, STEP 7 - Micro/WIN SMART, SMART PC Access V2.0, SIMATIC Automation Tool, SIMATIC WinCC, SIMATIC PCS 7, SIMATIC NET PC-Software, Primary Setup Tool (PST), Security Configuration Tool (SCT), SINEMA Server, SINAUT ST7CC, SIMATIC WinAC RTX 2010 SP2, SIMATIC WinAC RTX F 2010 SP2, SINUMERIK 808D Programming Tool, SIMATIC WinCC flexible 2008",
|
||||
"product_name" : "Primary Setup Tool (PST), SIMATIC Automation Tool, SIMATIC NET PC-Software, SIMATIC PCS 7, SIMATIC STEP 7 (TIA Portal) V13, SIMATIC STEP 7 (TIA Portal) V14, SIMATIC STEP 7 V5.X, SIMATIC WinAC RTX 2010 SP2, SIMATIC WinAC RTX F 2010 SP2, SIMATIC WinCC (TIA Portal) V13, SIMATIC WinCC (TIA Portal) V14, SIMATIC WinCC V7.2 and prior, SIMATIC WinCC V7.3, SIMATIC WinCC V7.4, SIMATIC WinCC flexible 2008, SINAUT ST7CC, SINEMA Server, SINUMERIK 808D Programming Tool, SMART PC Access, STEP 7 - Micro/WIN SMART, Security Configuration Tool (SCT)",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "SIEMENS SIMATIC WinCC (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 V5.X (All versions before V5.6), STEP 7 - Micro/WIN SMART (All versions before V2.3), SMART PC Access V2.0, SIMATIC Automation Tool (All versions before V3.0), SIMATIC WinCC (All versions before V7.4 SP1 Upd1), SIMATIC PCS 7 (All versions), SIMATIC NET PC-Software (All versions), Primary Setup Tool (PST) (All versions before V4.2 HF1), Security Configuration Tool (SCT) (All versions bevore V5.0), SINEMA Server (All versions before V14), SINAUT ST7CC (All versions), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SINUMERIK 808D Programming Tool (All versions before V4.7 SP4 HF2), SIMATIC WinCC flexible 2008 (All versions)"
|
||||
"version_value" : "Primary Setup Tool (PST) : All versions < V4.2 HF1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC Automation Tool : All versions < V3.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC NET PC-Software : All versions < V14 SP1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC PCS 7 : All versions < V9.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC STEP 7 (TIA Portal) V13 : All versions < V13 SP2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC STEP 7 (TIA Portal) V14 : All versions < V14 SP1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC STEP 7 V5.X : All versions < V5.6"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinAC RTX 2010 SP2 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinAC RTX F 2010 SP2 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC (TIA Portal) V13 : All versions < V13 SP2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC (TIA Portal) V14 : All versions < V14 SP1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.2 and prior : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.3 : All versions < V7.3 Update 15"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC V7.4 : All versions < V7.4 SP1 Upd1"
|
||||
},
|
||||
{
|
||||
"version_value" : "SIMATIC WinCC flexible 2008 : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINAUT ST7CC : All versions"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINEMA Server : All versions < V14"
|
||||
},
|
||||
{
|
||||
"version_value" : "SINUMERIK 808D Programming Tool : All versions < V4.7 SP4 HF2"
|
||||
},
|
||||
{
|
||||
"version_value" : "SMART PC Access : All versions < V2.3"
|
||||
},
|
||||
{
|
||||
"version_value" : "STEP 7 - Micro/WIN SMART : All versions < V2.3"
|
||||
},
|
||||
{
|
||||
"version_value" : "Security Configuration Tool (SCT) : All versions < V5.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -35,7 +95,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Siemens SIMATIC WinCC (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 V5.X (All versions before V5.6), STEP 7 - Micro/WIN SMART (All versions before V2.3), SMART PC Access V2.0, SIMATIC Automation Tool (All versions before V3.0), SIMATIC WinCC (V7.2 and prior, V7.3 before Update 15, and V7.4 before SP1 Upd1), SIMATIC PCS 7 (All versions before 9.0), SIMATIC NET PC-Software (All versions before V14 SP1), Primary Setup Tool (PST) (All versions before V4.2HF1), Security Configuration Tool (SCT) (All versions before V5.0), SINEMA Server (All versions before V14), SINAUT ST7CC (All versions), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SINUMERIK 808D Programming Tool (All versions before V4.7 SP4 HF2), and SIMATIC WinCC flexible 2008 (All versions) could be affected by a Denial-of-Service condition induced by a specially crafted PROFINET DCP broadcast (Layer 2 - Ethernet) packet."
|
||||
"value" : "A vulnerability has been identified in Primary Setup Tool (PST), SIMATIC Automation Tool, SIMATIC NET PC-Software, SIMATIC PCS 7, SIMATIC STEP 7 (TIA Portal) V13, SIMATIC STEP 7 (TIA Portal) V14, SIMATIC STEP 7 V5.X, SIMATIC WinAC RTX 2010 SP2, SIMATIC WinAC RTX F 2010 SP2, SIMATIC WinCC (TIA Portal) V13, SIMATIC WinCC (TIA Portal) V14, SIMATIC WinCC V7.2 and prior, SIMATIC WinCC V7.3, SIMATIC WinCC V7.4, SIMATIC WinCC flexible 2008, SINAUT ST7CC, SINEMA Server, SINUMERIK 808D Programming Tool, SMART PC Access, STEP 7 - Micro/WIN SMART, Security Configuration Tool (SCT). Specially crafted PROFINET DCP broadcast packets sent to the affected products on alocal Ethernet segment (Layer 2) could cause a Denial-of-Service condition of someservices. The services require manual restart to recover."
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user